I've recently had my WordPress install hacked. I'm running the latest version (2.9.1). The page that seems to be infected is the post-new.php page. All of the links from that page redirect to http://1dns.org.in/s/111.php, which is considered a fishing site by google. This is the only page in my WP install that appears to be infected.
I've replaced that file, but it didn't work. I've done a fresh upgrade, but that didn't seem to work. Any suggestions for how to start over? I'd export my DB, but if the injection is in there, then I don't suppose it will help.
FYI, I've also run WP exploit scanner, which resulted in the following:
iframes can sometimes be used by hackers to load their own adverts and code on your site.
r side of I-35 from the convention center.</p>
<p><iframe width="300" height="300" frameborder="0" scrolling="no" marginheight="0" marginwidth="0" src="http://maps.google.com/maps/m
I did a search on the site for "I-35 from the convention center" but received no results.
I'm really at a loss.